$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130353a646663333a666434303a3a2f34342d3438203d3e20323134323939.roa File: 326130353a646663333a666434303a3a2f34342d3438203d3e20323134323939.roa (raw, json) Hash identifier: FrXtmk7pAG6qQfvQv6ZeMBaIdLdax1zCCasuBlvhYoQ= Subject key identifier: 54:FB:61:89:31:8B:7C:69:46:44:F6:F2:CD:E4:CC:90:63:0B:26:FE Certificate issuer: /CN=B46FBF1DD35487568FC708767F085FAD2881F56D Certificate serial: 75241C288F9DD5AAA8D864F8ECDB3A8B9D20E8C0 Authority key identifier: B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130353a646663333a666434303a3a2f34342d3438203d3e20323134323939.roa Signing time: Thu 03 Jul 2025 21:56:22 +0000 ROA not before: Thu 03 Jul 2025 21:51:22 +0000 ROA not after: Thu 02 Jul 2026 21:56:22 +0000 asID: 214299 IP address blocks: 2a05:dfc3:fd40::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.mft rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 19:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:24:1c:28:8f:9d:d5:aa:a8:d8:64:f8:ec:db:3a:8b:9d:20:e8:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B46FBF1DD35487568FC708767F085FAD2881F56D Validity Not Before: Jul 3 21:51:22 2025 GMT Not After : Jul 2 21:56:22 2026 GMT Subject: CN=54FB6189318B7C694644F6F2CDE4CC90630B26FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:cf:e4:6c:32:fa:8f:f0:ec:96:e2:b3:ee:b8: a2:95:24:b3:18:bf:fd:de:02:b5:7d:e4:05:b9:7e: 86:5f:c6:f0:08:31:1c:4e:64:f0:7f:18:de:4c:6b: b2:d3:59:e9:0d:a6:7c:7b:7f:0d:0e:84:b0:2c:bd: b6:f6:34:39:98:ec:4b:f0:7b:f6:d9:d0:7e:b2:99: 99:1b:29:63:15:14:67:f2:bd:1a:3f:27:c3:70:81: fe:67:cf:5f:69:6d:90:d2:53:9b:63:ec:9b:3a:5d: 6d:69:b3:e2:de:4d:0d:e3:be:46:50:d9:fc:d5:4a: 9f:2c:8f:d7:00:78:ee:9d:dc:ce:00:bb:d1:f2:6d: 1e:f1:6b:48:fe:15:1a:81:1e:c3:70:ce:a6:4a:39: 9d:49:d3:35:97:72:e4:26:8e:cc:2a:c9:f8:d5:6e: e5:80:2a:9c:a8:db:ae:d5:ed:31:34:76:0a:16:07: 1d:18:29:4b:c1:ac:fb:87:81:c4:79:9c:e3:1e:fd: 66:6d:90:2c:0f:af:aa:0b:56:20:ef:98:2f:00:3e: 15:75:fa:2e:11:95:09:65:46:52:35:d3:41:87:b8: c4:5e:23:e4:a0:5b:a6:ef:e5:50:e2:10:3e:51:d5: 0d:3f:84:1d:20:ad:d8:bb:4b:5e:77:92:8a:da:7f: 4e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:FB:61:89:31:8B:7C:69:46:44:F6:F2:CD:E4:CC:90:63:0B:26:FE X509v3 Authority Key Identifier: keyid:B4:6F:BF:1D:D3:54:87:56:8F:C7:08:76:7F:08:5F:AD:28:81:F5:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/B46FBF1DD35487568FC708767F085FAD2881F56D.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/B46FBF1DD35487568FC708767F085FAD2881F56D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cf81e235-8158-407e-bcff-f096348357a2/2/326130353a646663333a666434303a3a2f34342d3438203d3e20323134323939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fd40::/44 Signature Algorithm: sha256WithRSAEncryption c2:a7:86:60:8c:39:7f:ae:fa:5d:f1:03:98:d7:d0:e3:a6:af: 1d:3c:70:4f:20:d4:4e:0b:1e:b1:0f:6d:ff:30:9f:bb:2d:09: e8:3d:0b:6c:ad:3c:6b:66:3a:36:ab:78:61:49:f1:46:85:22: 73:d2:79:cf:a3:9e:42:fe:2a:4a:20:f0:0e:3a:b7:be:7c:dd: 02:2e:f8:da:a5:22:1e:94:2e:1a:8c:a1:80:4a:35:46:19:a7: 4c:cd:98:df:20:da:1f:b8:b8:4b:e2:73:ba:b5:21:79:67:18: 74:1c:7a:dc:14:93:45:9a:d2:20:64:f1:90:be:b2:93:33:85: 9e:a9:90:89:01:3a:ee:8f:03:b2:73:68:d2:59:6a:31:7c:63: 5b:62:e2:40:3a:f6:51:32:9a:fd:cd:f9:85:8f:b6:cb:80:c1: 79:70:4e:6a:67:af:ba:fa:f3:6b:5b:68:4d:a6:f3:7c:16:6e: cb:e6:ab:7e:2c:6f:1b:44:c7:84:7f:9e:f5:70:c1:48:3a:cc: 1b:95:8e:70:7e:00:9c:b9:9b:77:c5:86:b4:64:d8:9c:4a:88: b6:41:fd:d2:63:6e:d8:a4:aa:7f:32:34:32:8f:5f:e4:87:25: 44:31:41:bf:07:f1:0f:d3:97:f3:d3:b7:21:8c:04:ea:50:26: c3:28:ae:05 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUdSQcKI+d1aqo2GT47Ns6i50g6MAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQy ODgxRjU2RDAeFw0yNTA3MDMyMTUxMjJaFw0yNjA3MDIyMTU2MjJaMDMxMTAvBgNV BAMTKDU0RkI2MTg5MzE4QjdDNjk0NjQ0RjZGMkNERTRDQzkwNjMwQjI2RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiz+RsMvqP8OyW4rPuuKKVJLMY v/3eArV95AW5foZfxvAIMRxOZPB/GN5Ma7LTWekNpnx7fw0OhLAsvbb2NDmY7Evw e/bZ0H6ymZkbKWMVFGfyvRo/J8Nwgf5nz19pbZDSU5tj7Js6XW1ps+LeTQ3jvkZQ 2fzVSp8sj9cAeO6d3M4Au9HybR7xa0j+FRqBHsNwzqZKOZ1J0zWXcuQmjswqyfjV buWAKpyo267V7TE0dgoWBx0YKUvBrPuHgcR5nOMe/WZtkCwPr6oLViDvmC8APhV1 +i4RlQllRlI100GHuMReI+SgW6bv5VDiED5R1Q0/hB0grdi7S153koraf07pAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQUVPthiTGLfGlGRPbyzeTMkGMLJv4wHwYDVR0j BBgwFoAUtG+/HdNUh1aPxwh2fwhfrSiB9W0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2Y4MWUyMzUtODE1OC00MDdlLWJjZmYtZjA5NjM0ODM1 N2EyLzIvQjQ2RkJGMUREMzU0ODc1NjhGQzcwODc2N0YwODVGQUQyODgxRjU2RC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS9CNDZGQkYxREQzNTQ4NzU2OEZDNzA4NzY3 RjA4NUZBRDI4ODFGNTZELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jZjgxZTIzNS04MTU4LTQwN2UtYmNmZi1mMDk2MzQ4MzU3YTIvMi8zMjYxMzAz NTNhNjQ2NjYzMzMzYTY2NjQzNDMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM0MzIzOTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKgXfw/1AMA0GCSqGSIb3DQEBCwUAA4IBAQDC p4ZgjDl/rvpd8QOY19Djpq8dPHBPINROCx6xD23/MJ+7LQnoPQtsrTxrZjo2q3hh SfFGhSJz0nnPo55C/ipKIPAOOre+fN0CLvjapSIelC4ajKGASjVGGadMzZjfINof uLhL4nO6tSF5Zxh0HHrcFJNFmtIgZPGQvrKTM4WeqZCJATrujwOyc2jSWWoxfGNb YuJAOvZRMpr9zfmFj7bLgMF5cE5qZ6+6+vNrW2hNpvN8Fm7L5qt+LG8bRMeEf571 cMFIOswblY5wfgCcuZt3xYa0ZNicSoi2Qf3SY27YpKp/MjQyj1/khyVEMUG/B/EP 05fz07chjATqUCbDKK4F -----END CERTIFICATE-----Generated at Sun Jul 6 08:05:45 2025 by rpki-client